Initial implementation of user permissions

2024-11-29 23:23:44 -05:00 · 2024-11-29 23:23:44 -05:00 · f9ee7bfdc0
commit f9ee7bfdc0
parent 9b27899446
1 changed files with 37 additions and 2 deletions
--- a/lib/nntp/tiny/user.py
+++ b/lib/nntp/tiny/user.py
@ -1,14 +1,49 @@
-from nntp.tiny.db     import DatabaseTable
+import enum
+
+from nntp.tiny.db     import Database, DatabaseTable
 from nntp.tiny.passwd import compare

+class UserPermission(enum.Flag):
+    NONE = 0
+    READ = 1
+    POST = enum.auto()
+    KILL = enum.auto()
+
+    def __str__(self):
+        return {
+            1: 'READ',
+            2: 'POST',
+            3: 'KILL'
+        }[self.value]
+
 class User(DatabaseTable):
    name    = 'server_user'
    key     = 'id'
    columns = 'id', 'active', 'username', 'password', 'fullname', 'mail',

    def auth(self, password: str):
-        if self.active is False or or self.password is None or self.password == '':
+        if self.active is False or self.password is None or self.password == '':
            return False

        return compare(password, self.password)

+    def permissions(self, db: Database) -> UserPermission:
+        perms = UserPermission.NONE
+
+        sql = """
+            select
+                perm.name
+            from
+                server_permission perm,
+                server_user_permission user_perm
+            where
+                perm.id = user_perm.permission_id
+                and user_perm.user_id = ?
+        """
+
+        cr = db.execute(sql, self.id)
+
+        for row in cr.each():
+            perms |= UserPermission[row[0]]
+
+        return perms